“Go to your Amazon, Zappos, etc. account now and change the password to something stronger. That’s the takeaway from a cyber security firm’s report that says a whopping 91 percent of all attempts to log into e-commerce websites are from hackers.”

“Shape Security’s report found that an average of 15 months elapsed between the day credentials were compromised and the day the spill was reported by an organization. This is the most dangerous window of time...”

“Web forums were the greatest targets for credential spills during 2017, which saw more than 2.3 billion credentials from 51 different organizations reportedly stolen, according to a new report from Shape Security.”

“Online retailers are hit the most by these attacks, according to a report by cyber security firm Shape Security. Hackers use programs to apply stolen data in a flood of login attempts, called credential stuffing.”

“Fingerprinting is just little bits of data that lead up to something specific,” says Jarrod Overson, the director of engineering at Shape Security, a cybersecurity company. “And it gets to be problematic when those data bits end up leading to individual people.”

“When Under Armour reports that potentially tens of millions of users have had their usernames and passwords stolen, this has a much bigger long-term effect on users' security on other online accounts, due to most peoples' habits of reusing the same passwords.”

“On average, 90% of all login attempts at ecommerce sites are credential-stuffing attacks. Around 60% of attempts at airlines and consumer banks are attacks, while 44% of attempts hotels see are attempts to take over accounts.”